Cisco ASA 5505 User Manual

C-12

Cisco ASA 5500 Series Configuration Guide using the CLI

Appendix C Configuring an External Server for Authorization and Authentication

Configuring an External LDAP Server

WebVPN-Macro-Substitution-
Value1

Y

Y

String

Single

See the SSL VPN Deployment Guide
for examples at the following URL:

http://supportwiki.cisco.com/View
Wiki/index.php/Cisco_ASA_5500_
SSL_VPN_Deployment_Guide%2
C_Version_8.x

WebVPN-Macro-Substitution-
Value2

Y

Y

String

Single

See the SSL VPN Deployment Guide
for examples at the following URL:

http://supportwiki.cisco.com/View
Wiki/index.php/Cisco_ASA_5500_
SSL_VPN_Deployment_Guide%2
C_Version_8.x

WebVPN-Port-Forwarding-
Auto-Download-Enable

Y

Y

Integer

Single

0 = Disabled
1 = Enabled

WebVPN-Port-Forwarding- Enable

Y

Y

Integer

Single

0 = Disabled
1 = Enabled

WebVPN-Port-Forwarding-
Exchange-Proxy-Enable

Y

Y

Integer

Single

0 = Disabled
1 = Enabled

WebVPN-Port-Forwarding-
HTTP-Proxy-Enable

Y

Y

Integer

Single

0 = Disabled
1 = Enabled

WebVPN-Single-Sign-On-
Server-Name

Y

String

Single

Name of the SSO Server (1 - 31
characters).

WebVPN-SVC-Client-DPD

Y

Y

Integer

Single

0 = Disabled
n = Dead peer detection value in
seconds (30 - 3600)

WebVPN-SVC-Compression

Y

Y

Integer

Single

0 = None
1 = Deflate compression

WebVPN-SVC-Enable

Y

Y

Integer

Single

0 = Disabled
1 = Enabled

WebVPN-SVC-Gateway-DPD

Y

Y

Integer

Single

0 = Disabled
n = Dead peer detection value in
seconds (30 - 3600)

WebVPN-SVC-Keepalive

Y

Y

Integer

Single

0 = Disabled
n = Keepalive value in seconds (15 -
600)

WebVPN-SVC-Keep-Enable

Y

Y

Integer

Single

0 = Disabled
1 = Enabled

WebVPN-SVC-Rekey-Method

Y

Y

Integer

Single

0 = None
1 = SSL
2 = New tunnel
3 = Any (sets to SSL)

Table C-2

ASA Supported Cisco Attributes for LDAP Authorization (continued)

Attribute Name

VPN 3000

ASA

PIX

Syntax/
Type

Single or
Multi-Valued

Possible Values